exploitDog

GHSA-3mrx-4wfm-g48p

Опубликовано: 02 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

An issue discovered in Obsidian Canvas 1.1.9 allows remote attackers to send desktop notifications, record user audio and other unspecified impacts via embedded website on the canvas page.

An issue discovered in Obsidian Canvas 1.1.9 allows remote attackers to send desktop notifications, record user audio and other unspecified impacts via embedded website on the canvas page.

Ссылки

EPSS

Процентиль: 96%

0.21253

Средний

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-276

Связанные уязвимости

CVE-2023-27035

CVSS3: 6.5

nvd

почти 3 года назад

An issue discovered in Obsidian Canvas 1.1.9 allows remote attackers to send desktop notifications, record user audio and other unspecified impacts via embedded website on the canvas page.

EPSS

Процентиль: 96%

0.21253

Средний

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-276